Netgear ReadyCloud TLS Cert Validation Bypass MiTM Attacks
CVE-2026-0420 Published on June 9, 2026

Missing TLS certificate validation in NETGEAR's ReadyCloud client app
An improper implementation of TLS certificate validation vulnerability found in NETGEAR's ReadyCloud client app which could allow an attacker to perform attacker-in-the-middle (MiTM) style attacks impacting the product's confidentiality. This vulnerability affects the listed NETGEAR models.

Vendor Advisory NVD

Weakness Type

Missing Cryptographic Step

The product does not implement a required step in a cryptographic algorithm, resulting in weaker encryption than advertised by the algorithm.

Affected Versions

NETGEAR RAX120v1:

Before V1.2.9.52 is affected.

NETGEAR RAX120v2:

Before V1.2.9.52 is affected.

NETGEAR RAX35:

Before V1.0.6.106 is affected.

NETGEAR RAX38:

Before V1.0.6.106 is affected.

NETGEAR RAX40:

Before V1.0.6.106 is affected.

Netgear ReadyCloud TLS Cert Validation Bypass MiTM AttacksCVE-2026-0420 Published on June 9, 2026

Weakness Type

Missing Cryptographic Step

Affected Versions

Netgear ReadyCloud TLS Cert Validation Bypass MiTM Attacks
CVE-2026-0420 Published on June 9, 2026